CLAIMS 

What is claimed is; 



1 1. A method of restricting Address Resolution Protocol (ARP) table updates to updates 

2 originating from authorized subsystems, the method comprising: 

3 receiving an instruction to update an ARP table; 

4 detennining whether a particular subsystem froni which the instruction originated is 

5 authorized; arid 

6 if the particular subsystem is authorized, then updating the ARP table based on the 
1 ' instruction. 

1 2. The method of Claim 1, wherein determining whether the particular subsystem is 

2 authorized comprises determining whether the particular subsysteni is contained in a set 

3 of one or more specified subsystems. 

1 3. The method of Claim 1, wherein determining whether the particular system is authorized 

2 comprises determining whether the particular subsystem is a Dynamic Host 

3 Configuration Protocol (DCHP) server. 

1 4. The method of Claim 1, wherein determining whether the particular system is authorized 

2 comprises determining whether the particular subsystem is a Network Address Translator 

3 (NAT). 

1 5. The method of Claini 1, wherein determining whether the particular system is authorized 

2 comprises determining whether the particular subsystem is an Authentication, 

3 Authorization, Accounting (AAA) server. 

1 6. The method of Claim 1, further comprising: 

2 if the particular subsystem is not authorized, then preventing the ARP table from being 

3 updated based.on the instruction; 

1 7. The method of Claim 1, further comprising: 

2 if the particular subsystem is not authorized, then performing the steps of: 
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3 determining whether a particular network interface through which the instruction 

4 was received is contained in a set of one or more specified network 

5 interfaces; 

6 if the particular network interface is contained in the set, then preventing the ARP 

7 table from being updated based on the instruction; and 

8 if the particular network interface is not contained in the set, then updating the 

9 ARP table based on the instruction. 

1 8. ' The method of Claim 1, further comprising: 

2 if the particular subsystem is not authorized, then performing the steps of: 

3 determining whether a particular network address indicated by the in;^truction is 

4 ' contained in a set of one or more specified network addresses; 

5 ' if the particular network address is contained in the set, then preventing the ARP 

6 table from being updated based on the instruction; and 

7 if the particular network address is not contained in the set, then updating the 

8 ARP table based on the instruction. 



1 9. The method of Claim 1, further comprising: 

2 determining whether a specified amount of time has passed since a time indicated by a 

3 timestamp associated with an entry in the ARP table; and 

4 if the specified amount of time has passed, then removing the entry from the ARP taible. 

1 10. The method of Claim 1, wherein the ARP table is updated only in response to instructions 

2 that are not ARP messages. 

1 11. The method of Claim 1 , wherein determining whether the particular system is authorized 

2 comprises determining whether the particular subsystem is a Hypertext Transfer Protocol 

3 (HTTP) server. 

1 12. A method of restricting Address Resolution Protocol (ARP) table updates to updates 

2 originating from authorized subsysterns, the method comprising: 

3 receiving an instruction to update an ARP table; 
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4 determining whether a particular network interface through which the instruction was 

5 received is contained in a set of one or more specified network interfaces; 

6 determining whether a particular network address indicated by the instruction is 

7 contained in a set of one or more specified network addresses; 

8 if the particular network interface is not contained in the set of one or more specified 

9 network interfaces, and if the particular network address indicated by the 

10 instruction is not contained in the set of one or more specified network addresses, 

11 . then updating the ARP table based on the instruction; and 

12 if the particular network interface is contained in the set of one or niore specified network 

13 interfaces, of if the particular network address is contained in the set of one or 

14 rnore specified network addresses, then performing steps comprising: 

15 determining whether a particular subsystem from which the instruction originated 

16 is authorized; 

17 if the particular subsystem is authorized, then updating the ARP table based on 

18 the instruction; and 

19 . if the particular subsystem is not authorized, then preventing the ARP table from 

20 being updated based on the instruction. 

1 13. The method of Claim 12, wherein receiving the instruction to update the ARP table 

2 : comprises receiving an ARP message that indicates an association between a network 

3 layer address and a data link layer address. 

1 14. A method of sending an instruction to update an Address Resolution Protocol (ARP) 

2 table in a system in which ARP table updates are restricted to updates originating from 

3 authorized subsystems, the method comprising: 

4 receiving a Dynamic Host Configuration Protocol (DHCP) message that indicates a 

5 network layer address; 

6 in response to receiving the message, determining whether the network layer address is 

7 bound with a data link layer address; and 

8 if the network layer address is not bound with a data link layer address, then sending an 

9 instruction to update an ARP table. 
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15. The method of Claim 14, wherein the instruction is to update the ARP table to contain a 
binding between the network layer address and a data link layer address of a DHCP client 
that sent the message. , 

16. The method of Claim 14, further comprising: 

determining whether a lease associated with the network layer address has expired; and 
if the lease has expired, then sending an instruction to update the ARP table, 

17. The method of Claim 14, further comprising: 

determining whether a lease associated with the network layer address has expired; and 
if the lease has expired, then sending an instruction to remove, from the ARP table, an 
entry that contains the network layer address, 

18. The method of Claim 14, further comprising: 

receiving a particular DHCP message that requests an extension of a lease; and 
in response to receiving the particular DHCP message, sending an instruction to update 
the ARP table. 

19. The method of Claim 14, further comprising; 

receiving a particular DHCP message that relinquishes a lease; and 
in response to receiving the particular DHCP message, sending an instruction to update 
the ARP table. 

20. The method of Claim 14, further comprising: 

if the network layer address is not bound with a data link layer address, then sending an 
instruction to start a process in connection with the network layer address^ 

21. The method of Claim 14, further comprising: 

determiiiing whether a lease associated with the network layer address has expired; and . 
if the lease has expired, then sending an instruction to stop a process in connection with 
the network layer address. 

22. The niethod of Claim 14, further comprising: 
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2 receiving a particular DHCP message that relinquishes a lease; and 

3 in response to receiving the particular DHCP message, sending an instruction to stop a 

4 process in connection with the network layer address. 

A computer-readable medium carrying one or more sequences of instructions for 
restricting Address Resolution Protocol (ARP) table updates to updates originating from 
authorized subsystems, which instructions, when executed by one or more processors, 
cause the one or more processors to carry out the steps of : 
receiving an instruction to update an ARP table; 

determining whether a particular subsystem from which the instruction originated is 
authorized; 

if the particular subsystem is authorized, then updating the ARP table based on the 
instruction. 

An apparatus for restricting Address Resolution Protocol (ARP) table updates to updates 
originating frorn authorized subsystems, comprising: 
means for receiving an instruction to update an ARP table; 
means for determining whether a particular subsystem from which the instruction 

originated is authorized; and 
means for updating the ARP table based on the instruction if the particular subsystem is 
authorized. 



1 25. An apparatus for restricting Address Resolution Protocol (ARP) table updates to updates 

2 . originating from authorized subsystems, comprising: 

3 a network interface that is coupled to a data network for receiving one or more packet 

4 flows therefrom; 

5 a processor; and 

6 one or more stored sequences of instructions which, when executed by the processor, 

7 cause the processor to carry out the steps of: 

8 receiving an instruction to update an ARP table; 

9 , determining whether a particular subsystem from which the instruction originated 
10 is authorized; and 
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11 if the particular subsystem is authorized, then updating the ARP table based on 

12 the instruction. 
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